Amazon Exam SOA-C02 Topic 7 Question 62 Discussion

Actual exam question for Amazon's SOA-C02 exam

Question #: 62
Topic #: 7

A SysOps administrator receives an alert from Amazon GuardDuty about suspicious network activity on an Amazon FC2 instance. The GuardDuty finding lists a new external IP address as a traffic destination. The SysOps administrator does not recognize the external IP address. The SysOps administrator must block traffic to the external IP address that GuardDuty identified

Which solution will meet this requirement?

ACreate a new security group to block traffic to the external IP address. Assign the new security group to the EC2 instance

BUse VPC flow logs with Amazon Athena to block traffic to the external IP address

CCreate a network ACL Add an outbound deny rule tor traffic to the external IP address

DCreate a new security group to block traffic to the external IP address Assign the new security group to the entire VPC

Show Suggested Answer

Suggested Answer: A

by Izetta at Sep 17, 2022, 09:39 PM

Limited Time Offer

25%

Off

Get Premium SOA-C02 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!